Transcription

1 IT Risk Management ISACA Switzerland Chapter After Hours Seminar Mario Walter Agenda Roche at a glance OSI Layers above 7 What we did What we plan to do how to not get shoot 2006 ISACA After Hours Seminar IT Risk Management Mario Walter Seite 2

6 Agenda Roche at a glance OSI Layers above 7 What we did What we plan to do how to not get shoot 2006 ISACA After Hours Seminar IT Risk Management Mario Walter Seite 11 OSI Modell 2006 ISACA After Hours Seminar IT Risk Management Mario Walter Seite 12

7 The layers above 7 Layer 10 Regulations Layer 9 Finance Layer 8 Politics 2006 ISACA After Hours Seminar IT Risk Management Mario Walter Seite 13 Agenda Roche at a glance OSI Layers above 7 What we did so far What we plan to do how to not get shoot 2006 ISACA After Hours Seminar IT Risk Management Mario Walter Seite 14

8 E Frequent ~ 1 per day D Probable ~ every 10 days C Occasional ~ 3 times a year B Remote ~ once in 3 years A Improbable ~ once in 30 years Minor 2 Moderate 3 Considerable 4 Critical 5 Catastrophic How to tackle risks Strategic approach Probability 1 Severity Risk Operational approach Correlation 2006 ISACA After Hours Seminar IT Risk Management Mario Walter Seite 15 Strategic approach - The Project Global IT Security launched a project to: develop a comprehensive overview of all potential relevant IT risk scenarios throughout Roche Diagnostics systematically collect and assess the top major risk scenarios related to IT security present all collected information on IT risk scenarios in one single picture, i.e. the IT Risk Landscape as a sound basis for decision making define a top-down approach for improving IT security based on the high level IT Risk Landscape enable an optimal balance between accepting/mitigating risks and prioritization, resource allocation, timing, impact 2006 ISACA After Hours Seminar IT Risk Management Mario Walter Seite 16

9 Method A team of internal and external IT security experts systematically collected, described and evaluated Roche Diagnostics specific IT risk scenarios Elaborated the risk ratings (i.e. frequency and severity), based on professional judgment mapped the risk scenarios to operational risk management standards, e.g. COSO chose not extreme but realistic scenarios that could happen here and now organized a security-internal quality assurance with the DISN, the Diagnostics Information Security Network, team members developed a process for periodic update/maintenance of the IT Risk Landscape 2006 ISACA After Hours Seminar IT Risk Management Mario Walter Seite 17 The IT Risk Landscape Probability E Frequent ~ 1 per day D Probable ~ every 10 days C Occasional ~ 3 times a year b B Remote ~ once in 3 years a A Improbable ~ once in 30 years Minor 2 Moderate 3 Considerable 4 Critical 5 Catastrophic Severity 2006 ISACA After Hours Seminar IT Risk Management Mario Walter Seite 18

12 A roadmap Provide senior management with traffic lights Complexity / Integration Create dashboards for your management Define a scoring system Time 2006 ISACA After Hours Seminar IT Risk Management Mario Walter Seite 23 Agenda Roche at a glance OSI Layers above 7 What we did so far What we plan to do how to not get shot 2006 ISACA After Hours Seminar IT Risk Management Mario Walter Seite 24

Accu-Chek Inform II system Professional glucose testing for the wireless age The Accu-Chek Inform II system Real time control The Accu-Chek Inform II System overview Quality Advanced chemistry with multiple

Roche Support Network Dependable technical, clinical and IT support delivered by experts who know your business Support you feel, but don t always see Solutions to optimize every aspect of your laboratory

Proactive recruitment and sourcing at Roche April 2014 Wiebke Bräuer Basic facts at a glance Founded 1896 in Basel, Switzerland Founding families still hold majority stake Employing 85,000 people Currently

Investor Update Basel, 14 October 2004 Nine-month sales show continued double-digit growth significantly above the market average Roche Group Sales in core businesses up by 14%* to 21.9 billion Swiss francs

Media Release Basel, 11 June 2009 New data demonstrate the ability of MabThera to reduce the progression of joint damage when used as a first-line biologic treatment in rheumatoid arthritis RA patients

Background Information r One About NAT Testing NAT testing has been widely embraced by laboratories throughout the world as a means to identify CT cases because of its high degree of accuracy and reliability

Roche in Brief 2015 Roche Who we are Who we are Roche Who we are 91,747 employees in over 100 countries CHF 48.1 bn in Group sales in 2015 # 1 in biotech, oncology, in vitro diagnostics and hospital market

Roche facts & figures for U.S. investors About Roche Founded in 1896, headquartered in Basel, Switzerland, Roche is a leader in research-focused healthcare with combined strengths in pharmaceuticals and

Committed to innovation and growth Alan Hippe, CFO Roche Group London, September 2012 This presentation contains certain forward-looking statements. These forward-looking statements may be identified by

Products and Solutions 2015 Roche Diagnostics I i I a I i healthy At Roche Diagnostics, we re giving you the answers today for a healthier tomorrow. We give you The Power of Knowing Diseases raise many

Roche in Switzerland Innovation is our home Roche s sites in Switzerland in context Roche was founded by Fritz Hoffmann-La Roche on 1 October 1896. He was one of the first people to recognise that major

FACULTY OF ALLIED HEALTH SCIENCES 102 Naresuan University FACULTY OF ALLIED HEALTH SCIENCES has focused on providing strong professional programs, including Medical established as one of the leading institutes

Not for redistribution Text Mining in a Pharmaceutical Company Carola Lefrank, Roche Innovation Center Basel Bern, June 2015 About Us Use of Text Mining Negotiation Challenges Commercial Services Summary

Roche for better patient care in kidney disease Kidney disease and its growing importance Chronic kidney disease is a serious condition affecting roughly 10% of the adult population 1, many of whom remain

Brochure More information from http://www.researchandmarkets.com/reports/3113388/ Global Monoclonal Antibodies Pipeline Insight 2015 Description: Ever since the Nobel Prize was bestowed on the person who

Roche Turkey Corporate Responsibility Report 2013 Improving lives - now and in the future Highlights of 2013 DJSI industry leader for the fifth time in a row High levels maintained in ethics and compliance

Innovation, Speed and Growth: Hoffmann-La Roche in the Pharmaceutical Industry CPM spoke recently with Ronnie Miller about how Hoffmann-La Roche stays on the cutting edge of the industry, and about Hoffmann-La

Centro de Salud México España Centro de Salud San Francisco Culhuacán Mexico City, Mexico Mexico City is one of the largest cities in the world and home to over 21 million people. The population is culturally

92/93 Arthur D. Little How important is the protection of intellectual property to sustaining innovation in your business? Schwan Without patents there would be no innovation in our industry. Patents are

Master Degree Programme MSc in Toxicology Department of Pharmaceutical Sciences, University of Basel Swiss Centre for Applied Human Toxicology (SCAHT) Master of Science in Toxicology University of Basel

Automating Cell Biology Annual general meeting, September 7, 2015 www.phiab.se 1 PHASE HOLOGRAPHIC IMAGING (PHI) Began as a research project at Lund University, Sweden, in 2000 Founded in 2004 Sales in

Brochure More information from http://www.researchandmarkets.com/reports/562864/ Clinical Chemistry Analyzers Description: Clinical chemistry analysis is one of the most important areas within clinical

Diagnostic and Medical Device Capabilities Boston Strategic Partners is uniquely qualified to work with diagnostic and medical device companies on a variety of engagements Broad experiences with the diagnostic

An important first step in identifying those at risk for Cardiovascular disease The Accutrend Plus system: from the makers of the ACCU-CHEK and CoaguChek systems Cardiovascular disease: the #1 killer in

For technical specifications and additional information please see the enclosed datasheets. Intelligent laboratory management Delivered by cobas IT middleware To arrange a meeting or demonstration to learn

Special Feature 2: Business Challenges Over the Past 40 Years Sysmex started operating in 1968 to sell hematology analyzers manufactured by TOA Electric Co., Ltd. (now TOA Corporation). Sysmex has faced

Media Release Basel, 28 June 2016 Roche s marketing applications for review of OCREVUS (ocrelizumab) in two forms of multiple sclerosis accepted by EMA and FDA OCREVUS is the first investigational medicine

IMI2: why, what, how? The Right prevention and treatment, to the right patient, at the right time Isabelle Thizon-de Gaulle VP, Strategic initiatives & Scientific relations Sanofi R&D Innovative Medicines

terreactive AG. Swiss Cyber Storm 2015. Effective Methods to Detect Current Security Threats Taking your IT security to the next level, you have to consider a paradigm shift. In the past companies mostly

Technology and Expertise Add Operational Value to Medical Device Trials Copyright 2015 Medidata Solutions. Medidata Solutions and other trademarks reserved in the US and globally. Medidata and other marks

Diagnostics In 2009 sales again grew well ahead of the market, with strong uptake of new products contributing to market share gains in key segments such as immunoassays and tissue diagnostics. All business

ST. VINCENT'S MEDICAL CENTER St. Vincent's Healthcare Medical Technology St. Vincent s Schools of Medical Science Throughout Northeast Florida and Southern Georgia, St. Vincent s HealthCare is well known

The Geography of Markets for Technology: Evidence from Bio- Pharmaceuticals Michelle Gittelman Department of Business and Management Rutgers Business School Newark-New Brunswick, New Jersey The pharmaceutical

AdvaMedDx.org 4 EDMA and its Market Intelligence Activities EDMA Statistics Evolution Up to the late 80 s no harmonized IVD market statistics National trade associations in Europe established their own

Links in this document have been set for a desktop computer with the resolution set to 1920 x 1080 pixels. Cyber Security: Software Security and Hard Drive Encryption 301-1497, Rev A September 2012 Copyright

1.0 Background This document serves as a sample Market-IP analysis report. It proposes to provide the reader with information relating to the products in the market and in general to patent landscape analysis.

Policy Issues in the Economics and Financing of Medical Technology in the Asia-Pacific Region Dr KAI HONG PHUA Joint Professor Yong Loo Lin School of Medicine and Lee Kuan Yew School of Public Policy National

University Hospital Ulm Ulm, Germany Prof. Dr. Dr. Dr. h.c. Max G. Bachem, Director Kerstin Stöhrer, Technical Supervisor The University Hospital Ulm was founded in 1982. In 30 years it has built an enviable

Special Feature: Growth Model of an Agile Company 15 Sysmex s Global Strategy From the time of its establishment, Sysmex has followed a steady growth trajectory, and the Group now provides products and

The Comments of the Biotechnology Industry Organization on the Discussion Paper on Compulsory Licenses Published by the Department of Industrial Policy and Promotion within India's Ministry of Commerce

Case Study www.siemens.com/diagnostics Hospital Clinic de Barcelona Advances Its Hemostasis and Hematology Workflow with Aptio Automation Answers for life. We ve undergone two revolutions: initially in

Our values help us to create added value in a sustainable way Sustainability includes fostering and retaining our most talented employees 32 Sustainability Report 2004 Creating value through sustainable